Reply to Office Action of May 17, 2007 - 2 - Hildebrand et al. 

Appl. No. 10/076,181 

Amendments to the Claims 

The listing of claims will replace all prior versions, and listings of claims in the 
application. 

1-9. (Canceled) 



10. (Currently Amended) A method for providing access management 
through use of a plurality of serv e r machines asoociatod with differ e nt locationo, tho 
method ^ comprising: 

(a) authenticating a user access privileges of a user to ^ ^4fe a first and a 
second server machine^ of the plurality of server machines with respect to a prior access 
requ e st wherebv the first and the second server machine are configured to comprise a 
secured item ; and 

(b) Gubooquently receiving a current acc e ss request to access a secured item 
via a s econd Ger\'^er machine of the plurality of Gcrv^cr machines; an d preventing access to 
a first one of the jSrst and the second server machine while the user is accessing a second 
one of the first and the second server machine. 

(e) upon rec e iving the curr e nt acces s request to access the secured item via 

the second server machine, — reconfiguring th e first n^rwor machine to prevent further 
access by the user to secured items via the first serv^er machine; and 

(d) upon receiving tho current access request to acc es s the secur e d it e m via 

the second server machine, reconfiguring the second ser\^er machine to permit access by 
tho user to at least the secur e d item via the second s e rver machine. 
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1 1 . (Cxirrently Amended) The method as recited in claim 4 0 29, wherein fee 
authenticating (a) step (al) authenticates both the user and a client machine being used 
by the user. 

12. (Currently Amended) The method as recited in claim 10, wherein the first 
serv e r machine and the second server machine are access points for the user to gain 
access to the secured items item . 

13. (Cvirrently Amended) The method as recited in claim 29. whereim 
when the user is at a first location, the user interacts over a network with the first 

server machine using a first client machine at the first location , and 

wherein w hen the user is at a second location, the user interacts over a network 
with the second server machine using a second client machine at the second location. 

14. (Currently amended) The method as recited in claim 40 30, wherein the 
method further comprises: 

determining, prior to reconfiguring steps (c) or (d) (hl\ (h2\ (h3\ and (h4\ 
whether the user is permitted to gain access fi*om a second location to the secured items 
item via the second server machine. 

15. (Currently amended) The method as recited in claim 40 29, wherein 
authenticating step fe ) (al) of the user occurs while the user is at a first location, and 
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wherein rec e iving steg_(a) (q2) of the acc e ss requ e st to access the s e cur e d item from th e 
user occurs while the user is at a second location. 

16. (Currently Amended) The method as recited in claim iQ 17. wherein the 
method further comprises: 

{e)£a4} upon receiving the current access request to access the secured item via 
the second server machine, determining permitted locations from which the user is 
permitted to gain access4e the secured it^H S item : 

ffi(a5) determinin g, prior to reconfiguring (c) or (d), whether the second location 
is one of the permitted locations for the user; and 

(g)£a6i bypassing reconfiguring (c) or (d) steps (bl), (hi), (b3), and (b4) w hen 
d e termining (f) step (a5) determines that the second location is not one of the permitted 
locations for the user. 

17. (Currently Amended) The method as recited in claim i€ 30, wherein: 
when the user is at the first location, the user interacts over a network with the 

first server machine using a first client machine at the first location, an d wh e rein 

when the user is at the second location, the user interacts over a network with the 
second server machine using a second client machine at the second location. 

18. (Currently Amended) A computer readable medium including at least 
computer program code for providing acce s s management through use of a plurality of 
server machines associat e d with different locations, the computer readable medium 
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compriGin g containing instructions for controlling at least one processor by a method 
comprising : 

computer program cod e for (a) authenticating a user access privileges of a user 
wife to a first and a second server machine of the plurality of s e rver machines with 
respect to a prior access request . whereby the first and the second server machine are 
configured to comprise a secured item : and 

computer program code for subsequently receiving a current access r e quest to 
accesG a securod item via a socond sorvor machine of the plurality of s e rver machinos rb) 
preventing access to a first one of the first and the second server machine while the user 
is accessing a second one of the first and the second server machine.t 

computer program code for, upon rccoiving tho current acccGG request to access 
th e secured item via the second server machine, reconfiguring the first serv e r machin e to 
prevent fiirther access by the user to secured items via the first server machine; and 

computer program code for, upon r e ceiving the current access request to access 
the secured item via the second serv^er machin e , — r e configuring th e second oerv'^or 
machine to permit access by the user to at least the secured item via the second serv^er 
machine. 

19. (Currently amended) The computer readable medium as recited in claim 
-tS_3i, wherein^ 

when the user is at a first location, the user interacts over a network with the first 
server machine using a first cli e nt machine at the first location , and 
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wher e in w hen the user is at a second location, the user interacts over a network 
with the second server machine using a second client machine at the second location. 

20. (Currently amended) The computer readable mediimi as recited in claim 
4^32, further comprising: 

computer program cod e for determining, prior to the reconfiguring of either the 
first local module at t he first server machine or the second local module at the second 
server machine, whether the user is permitted to gain access from a second location to 
the secured items item via the second server machine. 



21. (Currently amended) A system for providing access managemen t through 
use of a plurality of server machines associated with different locations , comprising: 

means for an access control device configured to authenticating authenticate a 
tts^ access privileges of a user w itib to a first and a second server machine of the 
plurality of s e rver machines with respect to a prior acoeso r e ques t , wherebv the first and 
the second server machine are configured to comprise a secured item, and to prevent 
access to a first one of the first and the second server machine while the user is accessing 
a second one of the first and the second machinefF ;]] 

means for subsequently r e ceiving a current access request to acces s a secured 
item via a second serv^er machine of the plurality of serv^er machines; 

means for, upon receiving the current access r e qu e st to acc e ss the secured item 
via the second Gor\ ' ^or machine, reconfiguring the first server machine to prevent further 
access by the user to. secured items via the first server machine; and 
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means for, upon r e ceiving th e current acc e ss request to acc e ss the secxir e d it e m 
via th e se cond ser\^er machine, reconfiguring the second server machine to permit access 
by the us e r to at least the secured item via the second server machin e. 

22. (Currently Amended) The computer readable medium as recited in claim 
4^ 31. wherein said computer program cod e for auth e nticating a user with a first server 
machin e comprises : 

computer pro-am cod e for step fal) authenticatin g authenticates both the user 
and a client machine being used by the user, 

23. (Currently Amended) The computer readable medium as recited in claim 
iS-32, further comprising: 

computer program code for determining, prior to reconfiguring the first local 
module at t he first server machine and the second local module at the second server 
machines machine , whether the user is permitted to gain access firom a second location to 
the secvired kerns item via the second server machine. 



24. (Currently Amended) The computer readable mediimi as recited in claim 
4-8-33, wherein step (a) further comprisin g comprises : 

computer program code for (a4) upon receiving the current access request to 
access the secured item via the second server machine, determining permitted locations 
firom which the user is permitted to gain access to the secxired i^em s item ; 
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computer program code for {a5)_determmin g, prior to r e configuring the first and 
second server machines, whether the second location is one of the permitted locations for 
the user; and 

computer program code for (a6) b ypassing reconfiguring the first and s e cond 
serv e r machines, steps (hl\ (b2\ (b3\ and (b4) if it is determine d -when step (a5) 
determines t hat the second location is not one of the permitted locations for the user. 

25. (Currently Amended) The system e f as recited in claim 21, wherein seiA 
means for authenticating comprises means for authenticating the access control device is 
configured to authenticate b oth the user and a client machine being used by the user. 

26. (Currently Amended) The system e f as recited in claim 21, wherein the 
first server machin e and the second server machine are access points for the user to gain 
access to the secured items item. 



27. (Currently Amended) The system e f as recited in claim 2Jr-35, wherein the 
access control device is fiirther comprisin g configured to : 

means for determining determine , prior to reconfiguring the first local module at 
the first server machine and the second local module at the second serve r machinoo 
machine, whether the user is permitted to gain access from a second location to the 
secured itoaa s item via the second server machine. 

28. (Canceled) 
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29. (New) The method as recited in claim 10, wherein step (a) comprises: 
(al) authenticating the user with the first server machine with respect to a 

previous access request; 

(a2) subsequently receiving a current access request via the second server 
machine; and 

(a3) authenticating the user with the second server machine with respect to the 
cxirrent access request. 

30. (New) The method as recited in claim 29, wherein step (b) comprises: 
(bl) upon receiving the current access request via the second server machine, 

identifying a first local module previously supporting the user at the first server machine; 

(b2) reconfiguring the first local module at the first server machine to remove 
support for the user at the firs server machine; 

(b3) identifying a second local module to support the user at the second server 
machine; and 

(b4) reconfiguring the second local module at the second server machine to 
add support for the user at the second server machine. 

31. (New) The computer readable medium £is recited in claim 18, wherein 
step (a) comprises: 

(al) authenticating the user with the first server machine with respect to a 
previous access request; 
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(a2) subsequently receiving a current access request via the second server 
machine; and 

(a3) authenticating the user with the second server machine with respect to the 
current access request. 

32. (New) The computer readable medium as recited in claim 31, wherein 
step (b) comprises: 

(bl) upon receiving the current access request via the second server machine, 
identifying a first local module previously supporting the user at the first server machine; 

(b2) reconfiguring the first local module at the first server machine to remove 
support for the user at the firs server machine; 

(b3) identifying a second local module to support the user at the second server 
machine; and 

(b4) reconfiguring the second local module at the second server machine to 
add support for the user at the second server machine. 

33. (New) The computer readable medium as recited in claim 32, wherein: 
when the user is at a first location, the user interacts over a network with the first 

server machine using a first client machine at the first location, and 

when the user is at a second location, the user interacts over a network with the 
second server machine using a second client machine at the second location. 
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34. (New) The system as recited in claim 21, wherein the access control 
device is configiired to: 

authenticate the user with the first server machine with respect to a pervious 
access request; 

subsequently receive a current access request via the second server machine; and 
authenticate the user with the second server machine with respect to the current 
access request. 

35. (New) The system as recited in claim 34, wherein the access control 
device is configured to: 

identify a first local module previously supporting the user at the first server 
machine upon receiving a current access request to access the secure item via the second 
server machine; 

reconfigure the first local module at the first server machine to remove support 
for the user at the first server machine; 

identify a second local module to support the user at the second server machine; 

and 

reconfigure the second local module at the second server machine to add support 
for the user at the second server machine. 
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